Links leading to a worm that eventually implants a nasty rootkit on auser’s computer are popping up on America Online Inc.’s (AOL) InstantMessenger network, security researchers are reporting.The URL (uniform resource locator) is passed through instant messageson a person’s Buddy List and in AOL chat rooms, Websense Inc. reported.Some versions of the URL have been taken down, and all were hosted onpersonal Web pages, the company said. Users see an IM (instant message)that says “see thing!!” or “hilarious,” followed by a URL.Clicking on the link starts a known worm, W32/Sdbot-ADD, which thentransmits the lockx.exe rootkit, according to an advisory posted Fridayby FaceTime Communications Inc., which is based in Foster City,California. The code allows an attacker to monitor the computer andupload or download files.It also attempts to shut down antivirus programs in addition toinstalling a backdoor that could be used to install more software. Thelockx.exe rootkit connects to an IRC (Internet relay chat) server andwaits for remote commands. Additional annoyances include changing the home page on the Internetbrowser and downloading applications from vendors such as 180solutions,Zango, the Freepod Toolbar, MaxSearch, Media Gateway and SearchMiracle,FaceTime said.By Jeremy Kirk – IDG News Service (London Bureau) Related content news Sysdig unveils cloud attack graph based on real-time threat data Sysdig also announced a new cloud inventory and agentless scanning capabilities to tackle cloud security risks. By Michael Hill Sep 27, 2023 3 mins Threat and Vulnerability Management Threat and Vulnerability Management Threat and Vulnerability Management feature What’s a cyber incident response retainer and why do you need one? Whether you need to hire a team to respond to any and all cyberattacks or just some hired guns to boost your capabilities, incident response retainers can ensure you’re covered. By Linda Rosencrance Sep 27, 2023 8 mins Cyberattacks Incident Response Security Practices brandpost How an integrated platform approach improves OT security By Richard Springer Sep 26, 2023 5 mins Security news Teachers urged to enter schoolgirls into UK’s flagship cybersecurity contest CyberFirst Girls aims to introduce girls to cybersecurity, increase diversity, and address the much-maligned skills shortage in the sector. By Michael Hill Sep 26, 2023 4 mins Back to School Education Industry IT Training Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe